VYPR
Medium severity4.9NVD Advisory· Published Mar 28, 2024· Updated Jun 17, 2026

CVE-2024-29898

CVE-2024-29898

Description

CreateWiki is Miraheze's MediaWiki extension for requesting & creating wikis. An oversight during the writing of the patch for CVE-2024-29897 may have exposed suppressed wiki requests to private wikis that added Special:RequestWikiQueue to the read whitelist to users without the (read) permission. This vulnerability is fixed in 8f8442ed5299510ea3e58416004b9334134c149c.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Miraheze/Createwikillm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 23415c17ffb4832667c06abcf1eadadefd4c8937

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.